Описание
Microsoft Office Elevation of Privilege Vulnerability
FAQ
What privileges could be gained by an attacker who successfully exploited the vulnerability?
An attacker who successfully exploited this vulnerability could execute RPC functions that are restricted to local clients only.
According to the CVSS metric, successful exploitation of this vulnerability could lead to total loss of confidentiality (C:H), integrity (I:H), and availability (A:H). What does that mean for this vulnerability?
An attacker who successfully exploits this vulnerability could perform a local attack potentially enabling access to the victim user's information, the ability to alter information, or the ability to cause downtime to the target environment.
Возможность эксплуатации
Publicly Disclosed
Exploited
Latest Software Release
DOS
EPSS
7.8 High
CVSS3
Связанные уязвимости
Microsoft Office Elevation of Privilege Vulnerability
Уязвимость пакета программ Microsoft Office, связанная с недостатками разграничения доступа, позволяющая нарушителю повысить привилегии в системе
EPSS
7.8 High
CVSS3